Skip to content

Commit

Permalink
fix(deps): pin colors package to 1.4.0 due to security vulnerability
Browse files Browse the repository at this point in the history
  • Loading branch information
@sergei-startsev
sergei-startsev authored and Jonathan Ginsburg committed Jan 13, 2022
1 parent de0df2f commit a5219c5
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 2 deletions.
2 changes: 1 addition & 1 deletion package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

5 changes: 4 additions & 1 deletion package.json
View file
Expand Up @@ -420,11 +420,14 @@
"chalkerx@gmail.com>",
"weiran.zsd@outlook.com>"
],
"overrides": {
"colors": "1.4.0"
},
"dependencies": {
"body-parser": "^1.19.0",
"braces": "^3.0.2",
"chokidar": "^3.5.1",
"colors": "^1.4.0",
"colors": "1.4.0",
"connect": "^3.7.0",
"di": "^0.0.1",
"dom-serialize": "^2.2.1",
Expand Down

0 comments on commit a5219c5

Please sign in to comment.